Sensible "Cyber War" Preparation, Or Just More Government Snooping?

Brian Doherty | 3.5.2010 5:33 PM

Ryan Singel at Wired has a great, detailed article warning us of the growing dangers of the military-security complex and its hyping of "cyber war" to give government more control over monitoring the Internet, and private companies more money helping sell the government the means to do it. Read the whole thing, and here are some choice excerpts:

The biggest threat to the open internet is not Chinese government hackers or greedy anti-net-neutrality ISPs, it's Michael McConnell, the former director of national intelligence.

McConnell's not dangerous because he knows anything about SQL injection hacks, but because he knows about social engineering. He's the nice-seeming guy who's willing and able to use fear-mongering to manipulate the federal bureaucracy for his own ends, while coming off like a straight shooter to those who are not in the know.

And now McConnell is back in civilian life as a vice president at the secretive defense contracting giant Booz Allen Hamilton. He's out in front of Congress and the media, peddling the same Cybaremaggedon! gloom.

And now he says we need to re-engineer the internet.

We need to develop an early-warning system to monitor cyberspace, identify intrusions and locate the source of attacks with a trail of evidence that can support diplomatic, military and legal options — and we must be able to do this in milliseconds. More specifically, we need to re-engineer the Internet to make attribution, geo-location, intelligence analysis and impact assessment — who did it, from where, why and what was the result — more manageable. The technologies are already available from public and private sources and can be further developed if we have the will to build them into our systems and to work with our allies and trading partners so they will do the same.

Re-read that sentence. He's talking about changing the internet to make everything anyone does on the net traceable and geo-located so the National Security Agency can pinpoint users and their computers for retaliation if the U.S. government doesn't like what's written in an e-mail, what search terms were used, what movies were downloaded….

The NSA dreams of "living in the network," and that's what McConnell is calling for in his editorial/advertisement for his company. The NSA lost any credibility it had when it secretly violated American law and its most central tenet: "We don't spy on Americans."

Unfortunately, the private sector is ignoring that tenet and is helping the NSA and contractors like Booz Allen Hamilton worm their way into the innards of the net. Security companies make no fuss, since a scared populace and fear-induced federal spending means big bucks in bloated contracts.

See also this Wall Street Journal report on some specific Obama administration ideas along the lines of waging "cyberwar" by sticking the government's nose further into the Internet:

The Obama administration lifted the veil Tuesday on a highly-secretive set of policies to defend the U.S. from cyber attacks.

It was an open secret that the National Security Agency was bolstering a Homeland Security program to detect and respond to cyber attacks on government systems, but a summary of that program declassified Tuesday provides more details of NSA's role in a Homeland program known as Einstein.

The current version of the program is widely seen as providing meager protection against attack, but a new version being built will be more robust–largely because it's rooted in NSA technology. The program is designed to look for indicators of cyber attacks by digging into all Internet communications, including the contents of emails, according to the declassified summary.

Re-read that last sentence again, and it doesn't take an Einstein to figure out that any protestations on the Obama administration's part that they have any respect for the 4th Amendment or privacy is utter bilge. I wrote on the government's growing snooping powers in ye Moderne Age at the American Conservative back in February.

Start your day with Reason. Get a daily brief of the most important stories and trends every weekday morning when you subscribe to Reason Roundup.

NEXT: Hermit Kingdom Linux, Giant Juche Rabbits, and the Dear Leader's Hennessey Problem

Hide Comments (87)

Editor's Note: As of February 29, 2024, commenting privileges on reason.com posts are limited to Reason Plus subscribers. Past commenters are grandfathered in for a temporary period. Subscribe here to preserve your ability to comment. Your Reason Plus subscription also gives you an ad-free version of reason.com, along with full access to the digital edition and archives of Reason magazine. We request that comments be civil and on-topic. We do not moderate or assume any responsibility for comments, which are owned by the readers who post them. Comments do not represent the views of reason.com or Reason Foundation. We reserve the right to delete any comment and ban commenters for any reason at any time. Comments may only be edited within 5 minutes of posting. Report abuses.

LibertyBill 15 years ago

Im in your computerz, watching your internetz
1. Suki 15 years ago
  
  Good Morning reason!
  1. Hayek's DJ 15 years ago
    
    Good morning afternoon, Suki!
Rich 15 years ago

The real action in a few years will be in the realm of quantum physics, which enables *absolutely secure* communications.
1. strat 15 years ago
  
  I haven't seen serious (relatively speaking) effort from the U.S. Government side on the quantum cryptography front as much as I've seen a lot of concern that someone else will make some progress with it.
Jobe 15 years ago

Lawnmower Man's in your head now.
Pro Libertate 15 years ago

All your database are belong to us.
1. John Tagliaferro 15 years ago
  
  +1
shrike 15 years ago

Ill trust the Electronic Freedom Foundation on this issue and not the authoritarian Koch Family of aborto-freak propaganda artists known as 'Reason'.
1. Paul 15 years ago
  
  artists known as 'Reason'
  
  Drink!
2. Jersey Patriot 15 years ago
  
  Up your dosage.
3. Episiarch 15 years ago
  
  Wow, shriek doesn't fear the NSA under Obama. Cue my total lack of surprise. As soon as the GOP takes over, though, then he'll be shrieking.
  1. shrike 15 years ago
    
    I despise the NSA as much as Eliot Spitzer did in 2008.
    
    Yet, I have no information critical to Wall Street felons.
    
    He scored some hot pussy though. The Bush Feds were very afraid of him.
    1. LibertyBill 15 years ago
      
      Spitzer has what to do with this?
      1. shrike 15 years ago
        
        Spitzer was nabbed via FISA interceptions.
        
        The Bushpigs needed to silence him due to his knowledge of AIG CDS malevolence.
        
        Episiarch 15 years ago
        
        Mmmm, that's some tasty conspiracy theory there, shriek.
        
        Chris Mallory 15 years ago
        
        If they needed him silenced, why isn't he taking a dirt nap?
      2. shrike 15 years ago
        
        Since when does the FBI care about whores and johns?
        
        John Tagliaferro 15 years ago
        
        Leave me out of this.
        
        Bobster0 15 years ago
        
        Ha!
        +1
      3. shrike 15 years ago
        
        Spitzer was head insurance commissioner for NY. He was the regulatory agent for AIG.
        
        Regulations mean something in the real world.
        
        In make-believe Libertarian world where anarchists beat off in their mothers basement that rule is pretty much silent.
        
        Almanian 15 years ago
        
        It's a CONSPIRACY, man!
        
        Bobster0 15 years ago
        
        Nope. In my own basement.
        
        live fish in our creeks 15 years ago
        
        Throw it in the garbage. We have enough shit in the drinking water.
4. Mr. FIFY 15 years ago
  
  Socialist pig.
  1. The Libertarian Guy 15 years ago
    
    I guess shrike doesn't have a problem with the Patriot Act renewal, then... because Obama approved it.
skr 15 years ago

And people call me paranoid, pfft.
Paul 15 years ago

This is partly why "net neutrality" is in fact a facade for government involvement into the internet. By a government mandate as to how your network will be built, this is akin to a guarantee that the government will be able to tap it.

Net neutrality is being sold as guaranteed access for "the people" which of course also means guaranteed access for the government.

And this irony has not escaped the Electronic Frontier Foundation:

So while we look forward to evaluating Chairman Genachowski's proposed net neutrality regulations, the first step must be a clear rejection of any suggestion that those regulations can be based on "ancillary jurisdiction." Otherwise, "net neutrality" might very well come to be remembered as the Trojan Horse that allowed the FCC take over the Internet.

http://www.eff.org/deeplinks/2.....nd-promise

I think the EFF is being far too generous on this issue. Net Neutrality isn't an FCC trojan horse, it's a trojan horse for the entire Federal Government domestic spying security apparatus.
1. Corduroy Rocks 15 years ago
  
  EFF has got its head in its ass on net neutrality. They obviously see the desire of the govt to intrude. They know the govt keeps no promises when it comes to new powers. So why do they continue to press for regulation?
  
  Could it be that they mis-stepped and now can't back down? Pride is a killer.
  1. LibertyBill 15 years ago
    
    Thats why Techonolgy Liberation Front is a better source for tech liberty
    1. John Tagliaferro 15 years ago
      
      Piss off! We are the Liberation Front of Technology.
      1. LibertyBill 15 years ago
        
        You dont have to be mean
        
        John Tagliaferro 15 years ago
        
        Go write "Obama Go Home" on the White House wall before you speak to us again.
        
        Tulpa 15 years ago
        
        Obama goes in the house.
        
        zoltan 15 years ago
        
        LibertyBill: Watch some Monty Python
        
        Mrs. Premise 15 years ago
        
        There's a penguin on the telly!
      2. Rich 15 years ago
        
        Apparently too esoteric, Brian JT.
Fist of Etiquette 15 years ago

...any protestations on the Obama administration's part that they have any respect for the 4th Amendment or privacy is utter bilge.

This is total nonsense. I wholly support President Obama in all his efforts to keep us safe and encourage all my fellow citizens to do the same. If the NSA feels it is necessary to read people's emails or blog comments to weed out those who would work to undermine the U.S. Government, then who are we to question?
1. LibertyBill 15 years ago
  
  I love your sarcasm.
  1. Fist of Etiquette 15 years ago
    
    I can assure you, and anyone else, that no one at this ip address knows what you're talking about.
    1. John Tagliaferro 15 years ago
      
      FoE, refreshing fun!
Polly 15 years ago

True freedom requires freedom from privacy.

If you must keep something secret, you are actually in a prison.
1. Corduroy Rocks 15 years ago
  
  I'm afraid we're not all willing to be crucified for our beliefs.
  
  Some of us actually think that we would have more impact on society by staying out of the gulags.
John Tagliaferro 15 years ago

Re-read that sentence. He's talking about changing the internet to make everything anyone does on the net traceable and geo-located so the National Security Agency can pinpoint users and their computers for retaliation if the U.S. government doesn't like what's written in an e-mail, what search terms were used, what movies were downloaded....

I am a bit rusty but I think I can find a workaround. Still have one of those "I love your computer" stickers around here someplace.
David E. Gallaher 15 years ago

Just as we need a Secretary of Peace to counterbalance the so-called Secretary of "Defense," it's not too soon to think of creating a new Secretary of No Snoopin', and I Mean It.
strat 15 years ago

I'm currently working on a paper about anonymity and strong network attribution.

I have seen some these issues from both sides of the privacy and national security fence, and I too worry greatly about how this will be handled by our "do something" political establishment.

I must however take issue with Mr. Doherty on one point. He writes:
"Re-read that sentence. He's talking about changing the internet to make *everything* anyone does ..." (my emphasis)

Most of the Government folks from whom I've heard in this context are very quick to state that they want things like strong attribution specifically for interactions with their systems and for their users, as opposed to anything else. Frankly, I'd like that, in that I'm constantly appalled about the lack of security (of all forms) in online services which I'm essentially compelled to use. Virginia's Department of Motor Vehicles is now charging fees if one _doesn't_ use their web site to perform certain transactions. For some Federal agencies there's no other way to do what one needs to. The FCC is a good example. I can live with this, though I do worry about disenfranchisement of people who choose not to use a computer or mobile phone.

I'd see Satan throwing snowballs before I supported a strong attribution regime for "everything" on the Internet. Not only is it a disturbing potential facilitator of tyranny, but it's also an expensive misuse of resources. Fortunately, there are factors inherently working against that.

If you look at the history of the difficulty in having certain leading network router vendors actually provide and support fast cryptography in their products you'll quickly see how the motive to move bits quickly trumped pretty much every other consideration.

I do expect that simpleton demagogues won't draw these distinctions, and will howl about national security.

There are some nationally-critical Internet security problems out there, but tracing everything won't fix all of them.

People have to make distinctions. This is where a knowledge of history and repeated invocations of pseudonyms such as "Publius" may save us from ill-conceived, haphazardly written legislation. If we're loud enough.

It will be important to find a way to cast as un-American anything that would prohibit we the citizenry from being able to perform the 21st-century equivalent of anonymous pamphleteering.
1. Episiarch 15 years ago
  
  I really don't think we have too much to worry about, really. The highly decentralized nature of the internet's physical connections make attempting to implement what they're talking about basically impossible.
  1. JLE 15 years ago
    
    Exactly. But they will create thousands of taxpayer funded new jobs trying.
Jess Sour 15 years ago

More Goverment Snooping. If EVER their was a time to be anonymous online, this is it.

Jess
http://www.total-anonymity.us.tc
1. DLM 15 years ago
  
  "If EVER their was a time to be anonymous online, this is it."
  
  But how will we know who we're insulting?
  1. Rodney Dangerfield's Ghost 15 years ago
    
    I'll take the hit.
2. John Tagliaferro 15 years ago
  
  There right you know.
  1. Right, now 15 years ago
    
    They're
3. Almanian 15 years ago
  
  Can a brother get a "LOL", Jess? Even just a little one? lol?
  
  Come on, li'l buddy...it'll get better.
NOT Almanian! No, seriously. 15 years ago

OK, I'll say it again - as long as you're not doing anything wrong, you have NOTHING to worry about.

Just like the Branch Davidians.

Sheesh - "Reasonoids" - more like "Paranoids"
1. The Libertarian Guy 15 years ago
  
  Trusting soul, aren't you?
  1. NOT Almanian! 15 years ago
    
    If it's from the gummint, it HAS to be good. Mmm, mmm, mmm!
    1. Paul Krugman 15 years ago
      
      Slurp!
intertube policia 15 years ago

Speaking of intertubes and searching here's an interesting NYT magazine article about the net vigilantes.

http://www.nytimes.com/2010/03.....man-t.html
IluvDetroit 15 years ago

If you elect this guy to any position of power involving education you deserve what you get.

http://www.detnews.com/article.....1409/METRO

Seriously? Do people in Detroit really wonder why their city is a shithole and will most likely remain so for decades to come?
Jess Sour 15 years ago

Yeah buddy, gotta love Big Brother Snooping. Use a good anonymity service for anything you do online now days!

Jess
http://www.total-anonymity.us.tc
P Brooks 15 years ago

But the Weekly has found, in a five-month investigation, that principals and school district leaders have all but given up dismissing such teachers. In the past decade, LAUSD officials spent $3.5 million trying to fire just seven of the district's 33,000 teachers for poor classroom performance ? and only four were fired, during legal struggles that wore on, on average, for five years each. Two of the three others were paid large settlements, and one was reinstated. The average cost of each battle is $500,000.

Hier via Pethokoukis (Reuters)

Happy Saturday.

This makes all those stories about California education cut protests much more interesting.
P Brooks 15 years ago

"In the incredibly toxic atmosphere that is Washington D.C., with the destruction of our elected leaders having become a blood sport, especially in talk radio and on the Internet, there is also no doubt that an ethics investigation would tear my family and my staff apart," the New York lawmaker said in a note posted on the Internet,

(...)

Massa announced earlier this week that he would not seek re-election because of health reasons. News reports said he was under an ethics investigation for alleged sexual harassment against a male staffer.

Reuters

"Those mean old Republicans. I just want to be loved. And help people, you know?"

*sniffles*
1. Why is it that 15 years ago
  
  so many of them are in the closet?
2. Andy Dick 15 years ago
  
  I feel for ya, Massa.
  1. The point is 15 years ago
    
    he feels for ya, Andy.
    1. Andy 15 years ago
      
      leave me dick out of it
3. Tulpa 15 years ago
  
  Massa's departure means that Pelosi now only needs 216 votes to pass the Senate health care bill. Massa was one of the Dems who voted "no" on the previous House health care vote.
  
  Not so funny anymore, is it?
  1. rctl 15 years ago
    
    Even funnier.
Pope Jimbo 15 years ago

It becomes clearer and clearer that our gubbment would have shut down the DARPA project back in the 70's that led to the Internet if they had realized what they were unleashing.

When they invent mind reading technology you can rest assured that our leaders all have black thoughts about our ability to get info unfiltered.
1. Pope Jimbo 15 years ago
  
  Just thinking about mind reading technology, how great would it be to watch a presidential debate with the candidates hooked up to a reverse teleprompter.
  
  Instead of telling them what to say, it would scan their brain housing group and let us know what they really think.
hurly buehrle 15 years ago

This sounds like "Cash for Clunkers" for offshore proxy-IP providers. Those folks will be doing brisk business if this goes any further.

I'm guessing the available bandwidth on the TOR network will tick upwards as well.
Forrest 15 years ago

You guys have flatter yourselves with your sense of self-importance. Obama's NSA really doesn't care about your emails or your blog postings -- not just because you're electorally impotent, but also because he's making sure that the warrantless wiretapping powers, which were "rammed through" (to use a popular Reason phrase) by your friends in the GOP Congress, will only be used in the fight against terror. If anything you should be happy that the previous administration which concerned itself with disrupting pornography as law enforcement priority #1, has exited stage left.
1. The Libertarian Guy 15 years ago
  
  Obama's gang could have cut parts of the PATRIOT Act, but they didn't.
  
  But if you think they WANT to get rid of the snooping, you're only half-right - they want to snoop on Libertaians, Ron Paul supporters, and other supposedly dangerous terrorists:
  
  http://www.scribd.com/doc/1329.....t-20Feb09-
  
  One of many such reports equating tax protesters with white-supremacist nutjobs. But you're okay with that, right?
2. The Libertarian Guy 15 years ago
  
  Even the ACLU got something right for a change:
  
  http://www.aclu.org/technology.....ve-summary
3. hmm 15 years ago
  
  I too trust our new more personable overlord. May his benevolent reign last forever.
4. TrickyVic 15 years ago
  
  ""Obama's NSA really doesn't care about your emails or your blog postings --""
  
  That's exactly what they care about.
DWCarkuff 15 years ago

And you know what, if there are any work arounds anybody with bad intentions and the capacity to act on them is certainly going to find them while the rest of us will be having our emails read and our surfing habits scrutinized and certainly any power the government has will be applied, not thwarting "terrorists", but nabbing folks for sex solicitation and selling certain proscribes substances. But that's the way all of this government monitoring stuff always works. Those we really need to be afraid of will barely be inconvenienced while the rest of us have one more nail driven into the coffin of any sense of living in a free society. Sorry if this is stupid and incoherent. It's early and I'm beat.
1. BakedPenguin 15 years ago
  
  That's essentially what I was thinking. This will do fuck-all to get the people who are actually dangerous. I will do a shitload to allow bureaucrats to spy on individuals who are doing nothing to endanger the lives of others.
oaktownadam 15 years ago

This push comes at the same time as the ITU (the UN telecommunications standards body) is trying to seize a large amount of IPv6 addresses from IANA.

Assigning IPs by country instead of by network (like phone numbers) would make monitoring, geolocation, and filtering a lot easier to accomplish.
1. strat 15 years ago
  
  Oh give the ITU as much as they want, it's not like there's a dearth. (If you don't have a sense of how mind-bogglingly huge the IPv6 address space is, look here.)
  
  It remains to be seen just how much top-down authority the ITU has a priori in terms of how things are built.
  
  The ITU does some good things, and the rest are ignored. Then people tend to rewrite the 'standard' to match what users/vendors really do.
  
  The more interesting landgrab is the suggestion that the reclaimed legacy IPv4 blocks should go to any one entity.
  1. network engineer 15 years ago
    
    It's not clear whether the ITU wants to be an alternative RIR, or whether it wants to take over IANA's job.
    
    What is clear is that the ITU functions in a way which is completely anathema to the way internet governance has been functioning since the deregulation of it in 1988.
    
    The ITU is top down; the only voting members are governments.
    
    The IANA, and the RIR's (ARIN, RIPE, etc) function in a bottom up manner; the members (meaning everyone who has address space assigned to them) vote on policy matters directly.
    
    Furthermore, IP's are not like phone numbers; they are not partitioned by country, and they are allocated by need, not according to political power.
    
    NANOG had a lengthy discussion of the proposal, archived here: http://www.merit.edu/mail.arch.....05805.html
danielobvt 15 years ago

The program mentioned in the second part, the National Cyber Protective System (NCPS AKA Einstein) is focused only on protecting US Government Assets. It exists at the perimeter of USG networks and scans all traffic in or out, which is consistent with all warning banners you find on those systems. Potentially it may be directed to look in certain directions based on information garnered from the NSA, but the applicable systems are USG, not the the general Internet.
Pink Pig 15 years ago

There seems to be a rule that the less you actually know about the internet, the stronger and firmer your opinion is. Unfortunately, the biggest ignoramus is the government, which has forgotten that the internet evolved from a defense department project which was originally highly secure.

Did you know that for more than 10 years, there has been a protocol on the internet which could allow anyone to validate an email address? There was so much screaming and hollering from the usual suspects that it was made optional (at the host end), which in practice means that it is broken.
jeff 15 years ago

I think the EFF is being far too generous on this issue. Net Neutrality isn't an FCC trojan horse, it's a trojan horse for the entire Federal Government domestic spying security apparatus.

online coupons
chanel bags 14 years ago

good post
assignment writing 13 years ago

Unlike other your piece of writing has a zeal that matters to your readers.it works according to the needs.

Please log in to post comments

Sensible "Cyber War" Preparation, Or Just More Government Snooping?

Latest

Rise of the Samurai Lawyers

Marco Rubio Says He's Revoked 300 Student Visas Over Campus Activism

Pam Bondi Aims To Revive a Moribund Legal Process for Restoring Gun Rights

Trump Is Sabotaging His 'Drill, Baby, Drill' Agenda

How Backpage Became MILFS.com

Recommended

Login Form